hi i mainly scan/target native php sites, question is to wordpress experts
is there a good reference to find or understand more about CVES those are not publicly disclosed
like this for example Flatsome < 3.17.6 - Unauthenticated PHP Object Injection CVE-2023-40555
that's a CVE found by wpscan
the theme is detected in /wp-content/themes/flatsome/. but no further information or poc on how to exploit it,
i searched google for the vulnerability but all i found was titles and 0 pocs.
-how do you treat such wordpress CVES and how to make the most out of them
is there a good reference to find or understand more about CVES those are not publicly disclosed
like this for example Flatsome < 3.17.6 - Unauthenticated PHP Object Injection CVE-2023-40555
that's a CVE found by wpscan
the theme is detected in /wp-content/themes/flatsome/. but no further information or poc on how to exploit it,
i searched google for the vulnerability but all i found was titles and 0 pocs.
-how do you treat such wordpress CVES and how to make the most out of them